Change theme on click now instead of selecting them then hitting submit more ?? 0s for the form checkboxes

post/admin/admin_custom_link.php

@@ -8,9 +8,9 @@ if (isset($_POST['add_custom_link'])) {
 
     $name = sanitizeInput($_POST['name']);
     $uri = sanitizeInput($_POST['uri']);
-    $new_tab = intval($_POST['new_tab']);
+    $new_tab = intval($_POST['new_tab'] ?? 0);
     $icon = preg_replace("/[^0-9a-zA-Z-]/", "", sanitizeInput($_POST['icon']));
-    $order = intval($_POST['order']);
+    $order = intval($_POST['order'] ?? 0);
     $location = intval($_POST['location']);
 
     mysqli_query($mysqli,"INSERT INTO custom_links SET custom_link_name = '$name', custom_link_uri = '$uri', custom_link_new_tab = $new_tab, custom_link_icon = '$icon', custom_link_order = $order, custom_link_location = $location");
@@ -31,9 +31,9 @@ if (isset($_POST['edit_custom_link'])) {
     $custom_link_id = intval($_POST['custom_link_id']);
     $name = sanitizeInput($_POST['name']);
     $uri = sanitizeInput($_POST['uri']);
-    $new_tab = intval($_POST['new_tab']);
+    $new_tab = intval($_POST['new_tab'] ?? 0);
     $icon = preg_replace("/[^0-9a-zA-Z-]/", "", sanitizeInput($_POST['icon']));
-    $order = intval($_POST['order']);
+    $order = intval($_POST['order'] ?? 0);
     $location = intval($_POST['location']);
 
     mysqli_query($mysqli,"UPDATE custom_links SET custom_link_name = '$name', custom_link_uri = '$uri', custom_link_new_tab = $new_tab, custom_link_icon = '$icon', custom_link_order = $order, custom_link_location = $location WHERE custom_link_id = $custom_link_id");

post/admin/admin_settings_theme.php

@@ -4,7 +4,7 @@ if (isset($_POST['edit_theme_settings'])) {
 
     validateCSRFToken($_POST['csrf_token']);
 
-    $theme = preg_replace("/[^0-9a-zA-Z-]/", "", sanitizeInput($_POST['theme']));
+    $theme = preg_replace("/[^0-9a-zA-Z-]/", "", sanitizeInput($_POST['edit_theme_settings']));
 
     mysqli_query($mysqli,"UPDATE settings SET config_theme = '$theme' WHERE company_id = 1");
 
@@ -37,11 +37,6 @@ if (isset($_POST['edit_favicon_settings'])) {
             $dest_path = $upload_file_dir . $new_file_name;
 
             move_uploaded_file($file_tmp_path, $dest_path);
-
-            $_SESSION['alert_message'] = 'File successfully uploaded.';
-        }else{
-
-            $_SESSION['alert_message'] = 'There was an error moving the file to upload directory. Please make sure the upload directory is writable by web server.';
         }
     }
 

post/admin/admin_user_model.php

@@ -2,4 +2,4 @@
 $name = sanitizeInput($_POST['name']);
 $email = sanitizeInput($_POST['email']);
 $role = intval($_POST['role']);
-$force_mfa = intval($_POST['force_mfa']);
+$force_mfa = intval($_POST['force_mfa'] ?? 0);

post/user/asset.php

@@ -59,7 +59,7 @@ if (isset($_POST['add_asset'])) {
     mysqli_query($mysqli,"INSERT INTO asset_history SET asset_history_status = '$status', asset_history_description = '$session_name created $name', asset_history_asset_id = $asset_id");
 
     //Logging
-    logAction("Asset", "Create", "$session_name created asset $asset_name", $client_id, $asset_id);
+    logAction("Asset", "Create", "$session_name created asset $name", $client_id, $asset_id);
 
     $_SESSION['alert_message'] = "Asset <strong>$name</strong> created $alert_extended";
 

post/user/asset_model.php

@@ -7,7 +7,8 @@ $model = sanitizeInput($_POST['model']);
 $serial = sanitizeInput($_POST['serial']);
 $os = sanitizeInput($_POST['os']);
 $ip = sanitizeInput($_POST['ip']);
-if ($_POST['dhcp'] == 1) {
+$dhcp = intval($_POST['dhcp'] ?? 0);
+if ($dhcp == 1) {
     $ip = 'DHCP';
 }
 $ipv6 = sanitizeInput($_POST['ipv6']);

post/user/client_model.php

@@ -4,9 +4,9 @@ $type = sanitizeInput($_POST['type']);
 $website = preg_replace("(^https?://)", "", sanitizeInput($_POST['website']));
 $referral = sanitizeInput($_POST['referral']);
 $rate = floatval($_POST['rate']);
-$currency_code = sanitizeInput($_POST['currency_code']);
-$net_terms = intval($_POST['net_terms']);
+$currency_code = sanitizeInput($_POST['currency_code'] ?? $session_company_currency); // So we dont have to to have a hidden form input if module sales is disabled
+$net_terms = intval($_POST['net_terms'] ?? $config_default_net_terms);
 $tax_id_number = sanitizeInput($_POST['tax_id_number']);
 $abbreviation = sanitizeInput($_POST['abbreviation']);
 $notes = sanitizeInput($_POST['notes']);
-$lead = intval($_POST['lead']);
+$lead = intval($_POST['lead'] ?? 0);

post/user/contact.php

@@ -81,7 +81,7 @@ if (isset($_POST['edit_contact'])) {
     require_once 'post/user/contact_model.php';
 
     $contact_id = intval($_POST['contact_id']);
-    $send_email = intval($_POST['send_email']);
+    $send_email = intval($_POST['send_email'] ?? 0);
 
     // Get Exisiting Contact Photo and contact_user_id
     $sql = mysqli_query($mysqli,"SELECT contact_photo, contact_user_id FROM contacts WHERE contact_id = $contact_id");

post/user/credential_model.php

@@ -9,7 +9,7 @@ $username = encryptLoginEntry(trim($_POST['username']));
 $password = encryptLoginEntry(trim($_POST['password']));
 $otp_secret = sanitizeInput($_POST['otp_secret']);
 $note = sanitizeInput($_POST['note']);
-$important = intval($_POST['important']);
+$important = intval($_POST['important'] ?? 0);
 $contact_id = intval($_POST['contact']);
 $vendor_id = intval($_POST['vendor']);
 $asset_id = intval($_POST['asset']);

post/user/trip_model.php

@@ -3,7 +3,7 @@ $date = sanitizeInput($_POST['date']);
 $source = sanitizeInput($_POST['source']);
 $destination = sanitizeInput($_POST['destination']);
 $miles = floatval($_POST['miles']);
-$roundtrip = intval($_POST['roundtrip']);
+$roundtrip = intval($_POST['roundtrip'] ?? 0);
 $purpose = sanitizeInput($_POST['purpose']);
 $user_id = intval($_POST['user']);
 $client_id = intval($_POST['client']);